[Tutor] PHP Volunteer Management (get_messages.php) SQL Injection Vulnerabilities

[dhelpi7]

bg udel keren bener dah te.op.pe be.ge.te (Top Bgt)

[eidelweiss]

sebener nya ada xxs nya jg , dan ada file lain yg kena sql tapi udah di publish sama nick G13..

Nah yg ini hasil analysis ulang ane dan ntah hilaf atau gk keliatan dia nya makanya gk di publish ,

jadi di file get_messages.php ternyata jg kena sql c0de nya bisa di liat nich:

Code:

<?php
define('INCLUDE_CHECK',true);
include '../../../config/connect.php';
$id = $_GET['id'];
$query = "SELECT * FROM messages, volunteers WHERE message_to_id = '$id' AND message_from_id = volunteer_id ORDER BY message_state, message_id";
$mysql_result = mysql_query($query);
$result = array();
while ($row = mysql_fetch_assoc($mysql_result)) {
$result[] = $row;
}
$data = json_encode($result);

print_r($data);
?>

$id = $_GET['id']; <= 1
$query = "SELECT * FROM messages, volunteers WHERE message_to_id = '$id' AND message_from_id = volunteer_id ORDER BY message_state, message_id";

Nah yg Ane merahin tuh kesalahan pada c0ding nya . CMIIW

[tempe_mendoan]

wuih exploiter

[anharku]

wew keren....
ajarin dong om cara nyari POC nya

[akatsuchi]

woh...flood

[chiboga]

ijin pelajari dulu ah ...!!!